OpenSSH introduces options to penalize undesirable behavior
by from OpenBSD Journal on (#6NBVH)
In a recent commit, Damien Miller (djm@) introduced the new sshd(8) configurations options, PerSourcePenalties and PerSourcePenaltyExemptList, to provide a built in facility in sshd(8) itself to penalize undesirable behavior, and to shield specific clients from penalty, respectively.
The commit message reads,
List: openbsd-cvsSubject: CVS: cvs.openbsd.org: srcFrom: Damien Miller <djm () cvs ! openbsd ! org>Date: 2024-06-06 17:15:26CVSROOT:/cvsModule name:srcChanges by:djm@cvs.openbsd.org2024/06/06 11:15:26Modified files:usr.bin/ssh : misc.c misc.h monitor.c monitor_wrap.c servconf.c servconf.h srclimit.c srclimit.h sshd-session.c sshd.c sshd_config.5 Log message:Add a facility to sshd(8) to penalise particular problematic clientbehaviours, controlled by two new sshd_config(5) options:PerSourcePenalties and PerSourcePenaltyExemptList.